Apple Mac OS X Font Book Font Collection Buffer Overflow Vulnerability

Apple Mac OS X Font Book Font Collection Buffer Overflow Vulnerability

Apple Font Book is prone to a buffer overflow vulnerability. This issue is exposed when the application handles font collection files. The vulnerability is due to insufficient bounds checking in user-supplied data contained in font collection bundles, causing an internal buffer to be overrun and memory corruption to occur. As these files may originate from an external source, this issue is considered remotely exploitable.

The application may be a default handler for these files, making it possible to exploit this issue through a malicious Web page or other means.

If the vulnerability is successfully exploited, it may result in execution of arbitrary code in the context of the user running the application.